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(54) Device and method for authenticating user's access rights to resources according to the 
Challenge-Response principle 

(57) The present invention provides a device for 
authenticating user's access rights to resources, which 
comprises first memory means 1 1 1 for storing challeng- 
ing data 18, second memory means 115 for storing 
unique identifying information of the user 116, third 
memory means 113 for storing proof support informa- 
tion 13 which is a result of executing predetermined 
computations to the unique identifying information of the 
user 16 and unique security characteristic information 
of the device 14. response generation means 116 for 
generating a response 19 from the challenging data 18 
stored in the first memory means 111, the unique iden- 
tifying information 16 stored in the second memory 
means 115 and the proof support information 13 stored 
in the third memory means 113, and verification means 
106 for verifying the legitimacy of the response 19 by 
verifying that the response 19, the challenging data 18 
and the unique security characteristic information of the 
device 14 satisfy a specific predefined relation. 
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Description 

The present invention relates to a device for 
authenticating user's access rights to resources. 

Program execution control technologies are known 
in the field to which the present invention belongs. The 
program execution control technologies are technolo- 
gies to: 

1 . Embed a routine for user authentication during 
the use of an application program; 

2. Have the routine examine whether the user 
attempting execution of the application possesses a 
key for proper authentication; and 

3. Continue the program only when the existence of 
the key for authentication is verified, otherwise to 
halt execution. 

By using these technologies, execution of the appli- 
cation program is enabled only for proper users having 
the authentication key. The technologies are commer- 
cialized in the software marketing field, two examples 
being Sentinel SuperPro (trade mark) from Rainbow 
Technologies, Inc. and HASP (trade mark) from Aladdin 
Knowledge Systems, Ltd. 

In the use of program execution control technolo- 
gies, a user who executes software possesses an 
authentication key as user identification information. 
The authentication key is a key for encryption and is dis- 
tributed to the user by a party who allows use of soft- 
ware, a software vender, for example. The 
authentication key is securely sealed in a memory, or 
the like, of hardware to prevent duplication, and is deliv- 
ered to the user using physical means such as the 
postal service. The user mounts personal compu- 
ter/workstation using a designated method. When the 
user starts up the application program and when the 
execution of the program reaches the user authentica- 
tion routine, the program communicates with the hard- 
ware in which the authentication key of the user is 
embedded. Based on the results of the communication, 
the program identifies the authentication key, and 
moves the execution to the following step upon confir- 
mation of existence of the correct authentication key. If 
the communication fails and the verification of the exist- 
ence of the authentication key is not established, the 
program stops automatically, discontinuing the execu- 
tion of subsequent steps. 

Identification of the authentication key by the user 
authentication routine is executed according to the fol- 
lowing protocol, for example: 

1. The user authentication routine generates and 
transmits an appropriate number to the hardware in 
which the key is embedded. 

2. The hardware in which the key is embedded 
encrypts the number using the embedded authenti- 
cation key and transmits it back to the authentica- 
tion routine. 



3. The authentication routine determines whether 
or not the number transmitted back is the number 
expected beforehand, or, in other words, the 
number obtained by encrypting the number with a 

5 correct authentication key. 

4. If the number transmitted back coincides with the 
expected number, the execution of the program is 
continued, otherwise the execution is halted. 

5. In this case, communication between the appli- 
10 cation program and the hardware in which the 

authentication key is embedded must be different 
for each execution even if it is between the same 
location in the same application with the same 
hardware. 

is Otherwise, a user who does not possess the cor- 
rect authentication key may be able to execute the 
program by recording once the content of communi- 
cation during the normal execution process, and by 
responding to the application program according to 

20 the recording each time the subsequent program is 
executed. Such improper execution of the applica- 
tion program by replaying the communication con- 
tent is called a replay attack 

25 In order to prevent a replay attack, in general, a ran- 
dom number is generated and used for each communi- 
cation as the number to be transmitted to the hardware 
in which the key is embedded. 

The present invention has been made in view of the 

30 above circumstances and an aspect of the present 
invention is to provide a device for authenticating user's 
access rights to resources and its method which set 
both users and the protecting side such as application 
providers free from inconveniences caused by handling 

35 of large amount of unique information, for example, a lot 
of authentication keys, and thereby user's access rights 
are easily and simply authenticated when the execution 
control of the program, privacy protection of electronic 
mails, access control of files or computer resources and 

40 so forth are carried out. 

Additional aspects and advantages of the invention 
will be set forth in part in the description which follows 
and in part will be obvious from the description, or may 
be learned by practice of the invention. The aspects and 

45 advantages of the invention may be realized and 
attained by means of the instrumentalities and combina- 
tions particularly pointed out in the appended claims. It 
will be understood that each of the features described 
herein can be taken separately or jointly. To achieve the 

so aspects and in accordance with the purpose of the 
invention, as embodied and broadly described herein, 
one aspect of a device for authenticating user's access 
rights to resources of the present invention comprises 
first memory means for storing challenging data, sec- 

55 ond memory means for storing unique identifying infor- 
mation of the user, third memory means for storing 
proof support information which is a result of executing 
predetermined computations to the user unique identi- 
fying information and unique security characteristic 
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information of the device, response generation means 
for generating a response from the challenging data 
stored in the first memory means, the unique identifying 
information stored in the second memory means and 
the proof support information stored in the third memory 
means, and verification means for verifying the legiti- 
macy of the response by verifying that the response, the 
challenging data and the unique security characteristic 
information of the device satisfy a specific predefined 
relation. 

With the above constitution, the unique security 
characteristic information of the device assigned to the 
protecting side and the unique identifying information of 
the user are made to be independent of each other. The 
information on actual access rights is represented as 
proof support information (i.e., an access ticket). The 
user has the user unique identifying information in 
advance, and on the other hand, a protector, such as a 
program creator prepares the unique security charac- 
teristic information, or the counterpart of the unique 
security characteristic information in terms of the public 
key cryptography, independent of the user unique iden- 
tifying information held by the user. An access ticket is 
generated based on the user unique identifying informa- 
tion and the unique security characteristic information 
used in creation of the application program or the like. 
Access tickets are distributed to the users, whereby 
authentication of the user's access rights to resources 
such as execution control can be performed. Thus com- 
plexity occurring in the case where both sides of user 
and protector use the same information for performing 
authentication can be avoided. 

Moreover, in the above constitution, at least the 
second memory means and the response generation 
means may be confined in the protect means which pre- 
vents any data inside from being observed or being 
tampered with from the outside. It may also be possible 
to implement at least the second memory means and 
the response generation means within a small portable 
device such as a smart card. 

The response generating means may comprise first 
calculation means and second calculation means, 
wherein the first calculation means executes predeter- 
mined calculations to the user unique identifying infor- 
mation stored in the second memory means and the 
proof support information stored in the third memory 
means to obtain the unique security characteristic infor- 
mation as a result, and the second calculation means 
executes predetermined calculations to the challenging 
data stored in the first memory means and the unique 
security characteristic information calculated by the first 
calculation means to generate the response as a result 
of calculation. 

The above-described response generation means 
may comprise third calculation means, fourth calcula- 
tion means and fifth calculation means. The third calcu- 
lation means executes predetermined calculations to 
the challenging data stored in the first memory means 
and the proof support information stored in the third 



memory means, the fourth calculation means executes 
predetermined calculations to the challenging data 
stored in the first memory means and the user unique 
identifying information stored in the second memory 
means, and the fifth calculation means executes prede- 
termined calculations to the results of calculation by the 
third and fourth calculation means, whereby the 
response is generated. In this case, at least the second 
memory means and the fourth calculation means can 
be confined within the protect means which prevents 
any data inside from being observed or being tampered 
with from the outside. At least the second memory 
means and the fourth calculation means may be imple- 
mented within a small portable device such as a smart 
card. 

The accompanying drawings, which are incorpo- 
rated in and constitute a part of this specification illus- 
trate embodiment of the invention and, together with the 
description, serve to explain the objects, advantages 
and principles of the invention. In the drawings: 

Fig. 1 is a block diagram showing an example of the 
fundamental constitution of the present invention; 
Fig. 2 is a block diagram showing an example of the 
constitution of the present invention in case that an 
entire device is implemented within a single PC; 
Fig. 3 is a block diagram showing the constitution of 
a first embodiment of a device for authenticating 
user's access rights to resources according to the 
present invention; 

Fig. 4 is a flow chart showing functions of means 
constituting the devices of the first embodiment; 
Fig. 5 is a block diagram showing the constitutions 
of a verification device and a proving device of a 
second embodiment of the device for authenticating 
user's access rights to resources according to the 
present invention; 

Fig. 6 is a flow chart showing functions of means 
constituting the verification device of the second 
embodiment; 

Fig. 7 is a block diagram showing a constitutional 
example of execution means of the verification 
means of the second embodiment, 
Fig. 8 is a flow chart showing functions of the con- 
stitutional example of the execution means shown 
in Fig. 7; 

Fig. 9 is a block diagram showing a second consti- 
tutional example of execution means of the verifica- 
tion means of the second embodiment; 
Fig. 10 is a flow chart showing functions of the con- 
stitutional example of the execution means shown 
in Fig. 9; 

Fig. 1 1 is a block diagram showing a third constitu- 
tional example of execution means of the verifica- 
tion means of the second embodiment, 
Fig. 12 is a flow chart showing functions of the con- 
stitutional example of the execution means shown 
in Fig. 1 1 ; 

Fig. 13 is a block diagram showing a fourth consti- 
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tutional example of execution means of the verifica- 
tion means of the second embodiment; 
Fig. 14 is a flow chart showing functions of the con- 
stitutional example of the execution means shown 
in Fig. 13; 

Fig. 15 is a block diagram showing the constitution 
of a proving device of a third embodiment of the 
device for authenticating user's access rights to 
resources according to the present invention; 
Fig. 16 is a flow chart showing functions of means 
constituting the proving device of the third embodi- 
ment; 

Fig. 1 7 is a block diagram showing a constitutional 
example of a fourth embodiment of the device for 
authenticating user's access rights to resources 
according to the present invention; 
Fig. 18 is a block diagram showing another consti- 
tutional example of the fourth embodiment; 
Fig. 1 9 is a flow chart showing functions of means 
of the constitutional example shown in Fig. 17; 
Fig. 20 is a block diagram showing the constitution 
of a fifth embodiment of the device for authenticat- 
ing user's access rights to resources according to 
the present invention; 

Fig. 21 is a flow chart showing functions of means 
constituting a verification device of the fifth embod- 
iment; 

Fig. 22 is a block diagram showing the constitution 
of a sixth embodiment of the device for authenticat- 
ing user's access rights to resources according to 
the present invention; 

Fig. 23 is a flow chart showing functions of means 
constituting devices of the sixth embodiment; 
Fig. 24 is a block diagram showing the constitution 
of a seventh embodiment of the device for authenti- 
cating user's access rights to resources according 
to the present invention; 

Fig. 25 is a flow chart showing functions of means 
constituting devices of the seventh embodiment; 
and 

Fig. 26 is a block diagram showing a part of consti- 
tution of a proving device of ninth and tenth embod- 
iments of the device for authenticating user's 
access rights to resources according to the present 
invention. 

At first, an example of the fundamental constitution 
of the present invention is described. The user authenti- 
cation system of the example can be applied to privacy 
protection of electronic mails or control of access to files 
or computer resources as well as control of execution of 
applications. 

In Fig. 1 , the user authentication system comprises 
a verification device 10 and a proving device 11: the 
proving device 1 1 receives an access ticket (proof sup- 
port data) from an access ticket generation device 12; 
the verification device 10 executes a verification routine 
15; the proving device 1 1 retains user identifying infor- 
mation 16 and the access ticket 13 and executes a 



response generation program 17. 

The access ticket generation device 12 is installed 
in the protector side, such as an application provider. 
The access ticket generation device 12 generates the 

5 access ticket 13 based on unique security characteristic 
information of the device 14 and the user identifying 
information 16 and the access ticket 13 is forwarded to 
the user through communication or sending of a floppy- 
diskette or the like to be retained by the proving device 

io 11 of the user. Then the verification device 10 sends 
challenging data 18 to the proving device 1 1 . The prov- 
ing device 1 1 generates a response 19 by utilizing the 
access ticket 13 and the user identifying information 16, 
and returns it to the verification device 10. The verifica- 

15 tion device 10 verifies the legitimacy of the response 
based on the challenging data, that is, the verification 
device 1 0 verifies that the response has been generated 
based on the challenging data and the unique security 
characteristic information of the device. 

20 If the legitimacy of the response is verified, the 
access rights of the user is authenticated; accordingly, 
continuation of execution of a program, access to files, 
and so forth, are permitted. 

With the above constitution, an example of execu- 

25 tion control of an application program is now described. 
In the above constitution, a user of an application 
program retains only one piece of user identifying infor- 
mation 1 6. The user identifying information is equivalent 
to a password in the password authentication and is 

3D unique, significant information which identifies the user. 
If it is possible for the user to copy and distribute the 
user identifying information 16, it will lead to the use of 
the application program by the user without legitimate 
access rights; therefore, the user identifying information 

35 16 is protected by protection means 160 so that even 
the user who is a legitimate owner of the user identifying 
information 16 cannot steal it. The protection means 
160 may be a hardware with a protecting effect (herein- 
after referred to as tamper-resistant hardware) against 

40 theft of the inside conditions by external probes. A 
method of implementation of the tamper-resistant hard- 
ware will be described later. 

In addition to the user identifying information 16, the 
response generation program 1 7 which executes prede- 

45 termined computations is provided to the user. The pro- 
gram 17 performs communication with a user 
authentication routine (verification routine 15): on 
receiving two parameters, namely, the user identifying 
information 16 and the access ticket 13, the program 1 7 

so executes computations to arbitrary inputted values to 
generate the response 19 for identifying the user. The 
user identifying information 16 is used in the course of 
the computation, and it is required to protect at least a 
part of the program 17 by the protection means 160 

55 since leakage of the user identifying information 16 to 
the outside will cause a problem by the above-described 
reason. 

Hereinafter, memory means for storing the user 
identifying information and a part of the program which 
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are protected by the protection means 160, device for 
executing the part of the program (for example, consist- 
ing of a memory and a MPU) and the protection means 
160 are integrally referred to as token (shown by the ref- 
erence numeral 20 in Fig. 1). The token may have port- 5 
ability, like a smart card. 

Similar to the conventional execution control tech- 
nologies, the verification routine 1 5 is set to the applica- 
tion program. The verification routine 1 5 is same as that 
of the conventional technologies in that it communicates 10 
with the response generation program 17 retained by 
the user, and continues execution of the program if and 
only if a returned result (response 18) is correct. There- 
fore, it is necessary that the program creator knows the 
method of computing the combination of transferred is 
data (challenging data 18) and correct returned data 
corresponding thereto (response 19). 

Some examples of functions of the verification rou- 
tine 15 are explained as follows: 

20 

1. Data to be transferred (challenging data 18) and 
expected returned data (expected value) are 
embedded in the verification routine 1 5. The verifi- 
cation routine 1 5 fetches the data to be transferred 
and transfers it to the user, and receives the 25 
returned data from the user. Then the verification 
routine 15 compares the returned data from the 
user with the expected value: if they are identical 
with each other, the verification routine 1 5 executes 
the next step of the program; if they are not identi- 30 
cal, the verification routine 15 halts the execution of 
the program. 

In the case where the returned data is 
assumed to be a result of encryption of the trans- 
ferred data in accordance with a predetermined 35 
encryption algorithm, the unique security character- 
istic information of the device is an encryption key. 

2. Data to be transferred (challenging data 18) and 
data generated by applying a one-way function to 
expected returned data (expected value) are 40 
embedded in the verification routine 15. The verifi- 
cation routine 1 5 fetches the data to be transferred 
and transfers it to the user, and receives the 
returned data from the user. Then the verification 
routine 15 compares data generated by applying 45 
the one-way function to the returned data from the 
user with the expected value: if they are identical 
with each other, the verification routine 1 5 executes 
the next step of the program; if they are not identi- 
cal, the verification routine 1 5 halts the execution of so 
the program. 

In the case where the returned data is 
assumed to be a result of encryption of the trans- 
ferred data in accordance with a predetermined 
encryption algorithm, the unique security character- 55 
istic information of the device is an encryption key. 

3. Protection is provided by encrypting a part of 
code of the application program in accordance with 
a predetermined encryption algorithm so that exe- 



cution of the program may be impossible. The veri- 
fication routine 15 transfers the encrypted code to 
the user and receives returned data from the user, 
and then replace the received value with the 
encrypted code. 

With this constitution, execution of the program 
may be possible if and only if the returned data is a 
correct decryption of the encrypted code. In this 
case, the unique security characteristic information 
is a decryption key for decrypting the encrypted 
code. 

4. Protection is provided by encrypting a part of 
code of the application program in accordance with 
a predetermined encryption algorithm so that exe- 
cution of the program may be impossible. Moreover, 
data generated by encrypting a decryption key 
paired with the encryption key used for encrypting 
the code is embedded as transferred data in the 
verification routine 15. The verification routine 15 
transfers the encrypted decryption key to the user 
and receives returned data from the user, and then 
decrypts the encrypted code with the value of the 
received data as a decryption key. 

With this constitution, the encrypted code is 
correctly decrypted if and only if the returned data is 
a decryption key which has been correctly 
decrypted, and accordingly execution of the pro- 
gram becomes possible. In this case, the unique 
security characteristic information of the device is a 
decryption key for decrypting the encrypted decryp- 
tion key. 

In the conventional execution control technolo- 
gies, the user identifying information (authentica- 
tion key of the user) is identical with the unique 
security characteristic information of the device. 
The conventional response generation routine 
receives the unique security characteristic informa- 
tion and the data transferred from the verification 
routine as the input, and then executes computa- 
tions thereto for generating data to be returned. 

By contrast, the present invention is characterized 
in that the user identifying information 16 and the unique 
security characteristic information of the device 14 are 
independent of each other. In this constitutional exam- 
ple, the response generation program 17 adds the 
access ticket 13 to the user identifying information 16 
and the data transferred from the verification routine 15 
(challenging data 18) as the input, and then executes 
predetermined computations to them for generating the 
data to be returned (response 19). The constitution has 
the following properties: 

1 . The access ticket 1 3 is the data calculated based 
on the specific user identifying information 16 and 
the unique security characteristic information of the 
device. 

2. At least from the viewpoint of the computation 
amount, it is impossible to calculate the unique 
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security characteristic information from the access 
ticket 13 without knowing the user identifying infor- 
mation 16. 

3. The response generation program 17 executes 
computations for generating correct data to be 
returned if and only if a correct combination of the 
user identifying information 16 and the access 
ticket 13. Note that the access ticket 13 has been 
calculated based on the user identifying information 
16. 

With the constitution described so far, the execution 
control can be carried out by the following steps: the 
user has the user identifying information 16 in advance; 
the program creator prepares the application program 
independent of the user identifying information 16 
retained by the user; and the program creator generates 
the access ticket 13 based on the user identifying infor- 
mation 1 6 and the unique security characteristic infor- 
mation of the device 16 used in creating the application 
program and distributes the access ticket 1 3 to the user. 

It may be possible to constitute the user identifying 
information 16 by two pieces of user identifying informa- 
tion for distinguishing the information used for preparing 
the access ticket 13 from the information used in a com- 
munication program by the user. In the most represent- 
ative example, the user identifying information 16 is 
made to be a public key pair: the public key is published 
to be used for generating the access ticket; and the indi- 
vidual key is confined within the token 20 as user's indi- 
vidual secret information. In this case, it is possible to 
calculate the access ticket 13 while the user identifying 
information 16 is kept secret by calculating the access 
ticket 13 from the unique security characteristic informa- 
tion 14 and the public key of the public key pair. 

First Embodiment 

In a first embodiment, an access ticket t is defined 
as the relation (1). 

t = D - e + oo <|> (n) (1) 

In the following bulleted paragraphs, symbols used 
in the above relation are described. 

An integer n is an RSA modulus, hence, a product 
of two very large prime numbers p and q (n = pq ). 
<|> (n) denotes the Euler number of n, hence, a prod- 
uct of two integers p-1 and q-1 (<|>(n) = (p-1)(q-1) )■ 
A piece of user identifying information e is an inte- 
ger allocated to each user. A piece of user identify- 
ing information is unique to a user: a different user 
identifying information is allocated to a different 
user. 

An access-ticket secret key D is a private key of an 
RSA public key pair. Since the modulus is assumed 
to be n, the relation 2 is derived from the definition. 



gcd (D, +(n)) = 1 (2) 

In the above, gcd (x, y) denotes the greatest com- 
mon divisor of two integers x and y. The existence 
5 of an integer E satisfying the relation (3), which is 
called an access-ticket public key, is derived from 
the relation (2). 

ED mod <t>(n) = 1 (3) 

10 

<o is an integer dependent upon both n and e. It is 
required that a probably different value will be allo- 
cated to co if at least one of n and e is different. In 
defining co in a consistent manner, a one-way hash 
15 function h may be used. 

co = h (n | e) (4) 

In the relation (4), n | e denotes the concatenation 

20 of the two bit-string representations of n and e. A one 
way hash function h is a function having the property 
that it is extremely difficult to calculate two distinct x and 
y satisfying h(x) = h(y) . Known examples of one-way 
hash functions are the MD2, MD4 and MD5 of RSA 

25 Data Securities Inc., and the standard SHS (Secure 
Hash Standard) of the U.S. federal government. 

Among the above numbers, t, E and n can be open 
to public without any risk, while the rest of the numbers, 
namely D, e, oa, p, q and <j> (n), are to be kept secret to 

30 everybody but those who are allowed to generate an 
access ticket. Fig. 3 depicts the constitution of the first 
embodiment. A verification device 10 comprises the fol- 
lowings: an access ticket public key storing means 101 ; 
a random number generation means 102; a random 

35 number storing means 103; a response storing means 
105; averification means 106; an execution means 107; 
and an error trapping means 108. On the other hand, a 
proving device 11 comprises the followings: a challeng- 
ing data storing means 1 1 1 ; a first calculation means 

40 112; an access ticket storing means 1 1 3; a second cal- 
culation means 114; a user identifying information stor- 
ing means 1 15; and a response generation means 116. 

By the following numbered paragraphs, the function 
of the means constituting the devices will be described. 

45 

1. The verification device 10 is invoked by a user. 
The way to invoke the device varies depending 
upon how the device is implemented. A few exam- 
ples are now shown. First, the verification device 1 0 

so may be implemented as a part of an application 
program to be installed and executed on a user's 
PC or workstation. In this case, the user may invoke 
the verification device 1 0 by invoking the application 
program in ordinary ways. For example, the user 

55 may click the iconic symbol representing the appli- 
cation program on the computer screen with a 
pointing device such as a mouse, or may use a key- 
board. The verification device 10 may be imple- 
mented as a program installed and executed on a 
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server computer that is connected to a user's PC or 
workstation by means of computer network. In this 
case, in order to invoke the verification device 10, a 
user first invokes a communication program 
installed on his/her own PC or workstation: the 5 
communication program establishes a connection 
to the server, and asks the server to invoke the ver- 
ification device 10. When the communication pro- 
gram and the server follow the TCP/IP protocols, for 
instance, the verification device 10 is allocated to a w 
predefined port number on the server computer. 
When the communication program issues a 
requirement for establishing a connection to the 
port, inetd, a demon program running on the server 
computer, receives the requirement. After checking 15 
which program is allocated to the specified port, it 
finally invokes the verification device 10, and estab- 
lishes a connection between the verification device 
and the communication program. This way of imple- 
mentation is very common in networked computer 20 
systems like Internet. The verification device 10 
may be implemented as a program written on a 
ROM or EEPROM within a smart card reader- 
writer. In this case, the proving device 1 1 is a pro- 
gram installed on an IC chip of a smart card; the 25 
verification device 10 is invoked whenever a user 
inserts his/her smart card into the smart card 
reader-writer. 

2. The verification device 10 sends challenging 
data C and a modulus n to the challenging data 30 
storing means 111 of the proving device 11. The 
modulus n is stored in the access-ticket public key 
storing means 101 . On the other hand, challenging 
data C is generated as follows: the random number 
generation means 102 generates a random integer 35 
r so that r and the modulus n are relatively prime 
(gcd(r, n) = 1 ); the generated random integer r is 
stored in the random number storing means 103; 
finally, the random number generation means 102 
sets the value of C to r. As stated later in more 40 
detail, the response which the proving device 1 1 is 

to respond to the verification device 10 is RSA- 
encryption of r with D as the key and n as the mod- 
ulus. Since the value of C is identical to the random 
integer r, it varies with occurrence of communica- 45 
tion between the verification device 10 and the 
proving device 11. This prevents so-called replay 
attack from succeeding. 

3. The first calculation means 1 1 2 of the proving 
device 11 calculates an intermediate result R* so 
according to the relation (5). An access ticket t to be 
used is stored in the access ticket storing means 
113. 

R' = C* mod n (5) 55 

4. The second calculation means 1 1 4 of the proving 
device 1 1 calculates a differential S according to 
the relation (6). A user identifying information e to 



be used is stored in the user identifying information 
storing means 115. 

S = C e modn (6) 

5. Receiving R' and S from the first calculation 
means 112 and the second calculation means 114, 
the response generation means 1 16 of the proving 
device 1 1 calculates a response R according to the 
relation (7). 

R = R'S mod n (7) 

6. The proving device 11 returns the generated 
response R to the response storing means 1 05 of 
the verification device 10. 

7. The verification means 106 of the verification 
device 10 first performs the calculation (8). Both the 
exponent E and the modulus n are stored in the 
access ticket public key storing means 101 , and the 
response R is stored in the response storing means 
105. 

R E mod n (8) 



Finally, the verification means 106 examines 
the relation (9). 

C mod n = R E mod n (9) 

rf the relation (9) holds, the verification means 
invokes the execution means 107. The execution 
means 1 07 provides a user with utilities that he/she 
wanted to access to. Otherwise, it invokes the error 
trapping means 108. The error trapping means 108 
may deny user access by terminating the execu- 
tion. 

Second Embodiment 

A second embodiment to be described is the same 
as the first embodiment regarding the definition of an 
access ticket t and the function of the proving device. 
However, the verification device works differently. The 
difference in the roles between challenging data C and 
a response R causes the difference in the function 
between the two embodiments: in the first embodiment, 
a response R is encryption of a random challenging 
data C; in the second embodiment, a response R will be 
decryption of challenging data C which is encryption of 
some other meaningful data. 

Fig. 5 depicts the constitution of devices of the sec- 
ond embodiment, and Fig. 6 depicts flow of data. A ver- 
ification device 10 comprises the following means: an 
access ticket public key storing means 101; a random 
number generation means 102; a random number stor- 
ing means 103; a response storing means 105; a rand- 
omizing means 121; a challenge seed storing means 



SDOCID: <EP 0792044A2 I > 



13 



EP 0 792 044 A2 



• 

14 



122; a de-randomizing means 123; and an execution 
means 310. A proving device 11 comprises the follow- 
ing means: a challenging data storing means 1 1 1 ; a first 
calculation means 102; an access ticket storing means 
1 1 3; a second calculation means 1 1 4; a user identifying 5 
information storing means 1 15; and a response genera- 
tion means 116. 

By the following numbered paragraphs, the function 
of the means constituting the devices will be described 
step by step. 



C = r E C'modn (10) 



The integer C is stored in the challenge seed 
storing means 122, and satisfies the relation (11) 
for some data K. 

C = K E mod n (11) 

The exponent E (access ticket public key) and 
the modulus n are both stored in the access ticket 
public key storing means 101 . 

The verification device 1 0 retains encryption C 
of K instead of K itself. In fact, C is RSA encryption 
of K with a public key E and a modulus n. This has 
an advantage in the viewpoint of security: the data 
K crucial for authentication procedures never leaks 
from the verification device 10. The randomness of 
r also plays an important role: if r were identical to 
some secret constant, the challenging data C would 
be encryption of the data K up to a constant coeffi- 
cient, and therefore the response which the proving 
device 1 1 generates would be K up to a constant 
coefficient; thus, constant r would allow replay 
attacks since communication between the verifica- 
tion device 10 and the proving device 11 would be 
always identical. In this embodiment, by generating 
challenging data C so that it is dependent on a ran- 
dom number r (see the relation (10)), communica- 
tion between the verification device 10 and the 
proving device 1 1 occurs with variation, and there- 
fore attempts of replay attacks become hopeless. 
3. The first calculation means 112 of the proving 



device 11 calculates an intermediate result R* 
according to the relation (12). 

R' = C l mod n (12) 



In course of calculation, the means uses the 
access ticket t stored in the access ticket storing 
means 113. 

4. The second calculation means 1 14 of the proving 
device 11 calculates a differential S according to 
the relation (13). 

S = C e modn (13) 



In course of calculation, the means uses the 
user identifying information e stored in the user 
identifying information storing means 1 15. 

5. Receiving the intermediate result R' and the dif- 
ferential S from the first calculation means 112 and 
the second calculation means 114, the response 
generation means 116 of the proving device calcu- 
lates a response R according to the relation (14). 

R = R'S mod n (14) 

6. The proving device 11 returns the generated 
response R to the response storing means 307 of 
the verification device 1 0. 

7. The de-randomizing means 123 of the verifica- 
tion device 1 0 calculates K' according to the relation 
(15). 

K'=r' 1 Rmodn (15) 



In course of calculation, the means uses the 
random number r stored in the random number 
storing means 103 and the response R stored in 
the response storing means 105. Note that the val- 
ues K' and K are identical with each other, if and 
only if the proving device 11 calculated the 
response R based on a right pair of an access ticket 
t and a user identifying information e. 

Finally, the de-randomizing means 123 sends 
K* to the execution means 310, and the execution 
means 310 executes predefined procedures using 
this given K\ The execution means 310 is designed 
so that it works properly only when K' is identical 
with K; otherwise it fails to work. 

The following paragraphs describes several exam- 
ples of implementation of the execution means 310. 

1 . Fig. 7 depicts a first example. A memory means 
310 a of the execution means 310 retains the data 
K. Receiving K' from the de- randomizing means 
123, a comparison means 310b directly examines 
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1 . The verification device 1 0 is invoked by a user. 

2. The verification device 10 sends challenging 
data C and a modulus n to the challenging data 
storing means 1 1 1 of the proving device 1 1 . The 15 
modulus n is stored in the access ticket public key 
storing means 101. On the other hand, challenging 
data C is generated by carrying out the following 
steps: the random number generating means 1 02 
generates a random integer r so that r and the mod- 20 
ulus n are relatively prime (gcd (r, n) = 1 ); the ran- 
dom integer r is stored in the random number 
storing means 103; the randomizing means 121 
generates challenging data C according to the rela- 
tion (10). 25 
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the equality K= K\ If the equality does not hold, 
the execution means 310 suspends its performance 
immediately. Otherwise, the execution means 310 
continues its performance and provides users with 
utilities. This example includes the disadvantage 5 
caused from the fact that the data K critical for 
authentication procedures appears as it is in the 
device: when a computer program to be installed 
and executed on a users PC or workstation is 
implemented on the execution means 310, it is not 70 
impossible for a user to find out the value K by ana- 
lyzing the code of the application program. The 
value K is crucial, because, if once the user knows 
the value of K, and further if he/she can predict ran- 
dom number sequences to be generated by the 75 
random number generation means 102, he/she can 
construct a device simulating the proving device 10 
without any of an access ticket and a user identify- 
ing information e. In other words, anybody could 
pass the authentication check by the verification 20 
device 10 with this simulator, whether he/she is 
authorized or not. 

2. Fig. 9 depicts a second example. In this example, 
a memory means 310a retains h(K), instead of K, 
which is a value obtained by applying a one-way 25 
hash function h to K. A significant property of one- 
way hash functions is that it is computationally 
impossible to calculate x satisfying y = h(x) given y. 
Receiving K' from a de-randomizing means 123, a 
hashing means 310c calculates h(K') which is the 30 
result of applying the one-way hash function h to K'. 

Then, the comparison means 310b examines 
the identity of this h(K') and the value stored in the 
memory means 310a (= h(K)). Compared with the 
first example, this example is safer since there is no 35 
effective means to find out the critical data K: even 
though a user succeeded in analyzing the code of 
the program constituting the execution means 310, 
he/she couldn't find out any more than the value of 
h(K); due to the property of one-way hash func- 40 
tions, it is computationally impossible to calculate K 
given h(K). However, when the execution means 
310 is implemented as a computer program, the 
comparison means 310b may be represented as an 
if-clause. If the verification device is further 45 
assumed to be executed on a user's PC or worksta- 
tion, a user may have a chance to modify the code 
so that the if-clause shall be always skipped. 

Therefore, the implementation of the this exam- 
ple is not safe enough, in particular, if the execution so 
means 310 is implemented as a computer program 
to be executed on a user's PC or workstation. 

3. Fig. 1 1 depicts a third example. This time, protec- 
tion is applied such that execution of the program of 
the execution means 310 becomes impossible by 55 
encrypting a portion or the whole of the code of the 
program. The encrypted code is stored in the chal- 
lenge seed storing means 122 as a seed C for 
challenging data C. More precisely, the crucial data 



K is program code to be encrypted, and C is RSA 
encryption of the code K with a public key E and a 
modulus n (C = KE mod n ). Both E and n are the 
values stored in the access ticket public key storing 
means 101. The execution means 310 includes a 
code storing means 310d, a code loading means 
31 Oe and a code execution means 3101 The code 
loading means 31 Oe feeds K', which the code stor- 
ing means 310d received from the de-randomizing 
means 123, to the code execution means 310f. 
Only when K' is identical with K, the code fed to the 
code execution means 31 Of is meaningful as a part 
of the program of the execution means 310. In the 
following, a more detailed description of the compo- 
sition is provided. Consider the case where the exe- 
cution means 310 is implemented as a computer 
program executed on a user's PC or workstation. 
The code storing means 31 Od is a specified region 
within a memory of a user's PC. 

The code execution means 31 Of comprises the 
CPU and OS of the PC. The CPU and OS, cooper- 
ating with each other, fetch instructions form a cer- 
tain predefined region within the memory space 
(called program region), and executes those 
instructions one by one. Generally speaking, a 
meaningful chunk of instructions is called a pro- 
gram, and a program is located within the program 
region. The entity of the code loading means 310e 
is a part of the program constituting the execution 
means 310, and it is to be executed at first when the 
execution means 310 is invoked. When invoked, the 
code loading means 31 Oe orders the code execu- 
tion means 31 Of to copy the content stored in the 
code storing means 31 Od onto a specified area 
within the program region, and then orders the code 
execution means 31 Of to execute the copied 
sequence of instructions by issuing a JMP com- 
mand, for example. 

Thus, since a part or the whole of the code of 
the program of the execution means 310 is 
encrypted, and further since it is decrypted tempo- 
rarily only when the verification device 10 and the 
proving device 1 1 cooperate with each other prop- 
erly, the execution means 310 is much safer than in 
the cases of the preceding two examples: even 
though a user succeeded in analyzing the program, 
he/she couldn't obtain the missing code K at all; 
modifying the code of the program without the 
knowledge about K is definitely no use. 
4. Fig. 13 depicts a fourth example. This example is 
substantially the same as the third example except 
that K is the encryption key used in encrypting code 
of the program constituting the execution means 
310, while K is the code itself in the previous exam- 
ple. Since the code to be encrypted may be of large 
size, according to the composition of the third 
example, the size of K (namely, that of C and C) 
may be large enough to make the performance of 
the verification device 10 and the proving device 1 1 
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worse. In contrast, according to the composition of 
the fourth example, the size of K (namely, that of C) 
remains unchanged irrespective of the size of the 
program code to be encrypted: the size of K is 
determined by the cipher algorithm to be used; if 5 
DES (Data Encryption Standard) is used, K is 
always 64 (56) bits long even when the size of the 
code to be encrypted is measured by Mbyte. 

The execution means 310 comprises an 
encrypted code storing means 31 Og, a decryption 10 
means 31 Oh, a code loading means 3101, and code 
execution means 31 Of. Receiving the data K' from 
the de-randomizing means 123, the decryption 
means 31 Oh decrypts the content stored in the 
encrypted code storing means 31 Og. In the process 15 
of decryption, K' is used as a decryption key. The 
code loading means 3101 loads the output of the 
decryption means 31 Oh, which is decrypted code if 
K' is identical with K, onto a specified area within 
the program region, and then orders the execution 20 
means 31 Of to execute the loaded code. 

Third Embodiment 

In a third embodiment, the definition of an access 25 
ticket is given as the relation (16). 

t=D+F(n, e) (16) 

The following bulleted paragraphs illustrate the 3c 
symbols appearing in the relation (16). 

An integer n is an RSA modulus, hence, a product 
of two very large prime numbers p and q (n = pq ). 
(|> (n) denotes the Euler number of n, hence, a prod- 35 
uct of two integers p-1 and q-1 (<|> (n) = (p-1)(q-1) ). 
A user identifying information e is an integer allo- 
cated to each user. The user identifying information 
e is unique to each user: 

A different user identifying information is allocated 40 
to a different user. 

An access-ticket secret key D is the private key of 
an RSA public key pair. Since the assumed modu- 
lus is n, D satisfies the relation (1 7). 

45 

gcd(D, +(n))«1 (17) 

In the above, gcd(x, y) denotes the greatest com- 
mon divisor of two integers x and y. The existence 
of an integer E satisfying the relation (18), which is 50 
called an access-ticket public key, is derived form 
the relation 1 7. 

ED mod <t> (n) = 1 (18) 

55 

A two variable function F(x, y) is an arbitrary colli- 
sion-free function. Practically, a collision -free func- 
tion may be constructed using a one-way hash 
function h as the relation (19). 



F(x, y) = h(x | y) (19) 

Figs. 15 and 16 are for depicting this embodiment: 
Fig. 15 depicts the constitution of the devices of this 
embodiment; Fig. 16 depicts flow of data. 

In Fig. 15, a proving device 11 comprises a chal- 
lenging data storing means 111, a first calculation 
means 1 12, an access ticket storing means 1 13, a sec- 
ond calculation means 114, a user identifying informa- 
tion storing means 115, a response generation means 
1 16, and an exponent generation means 130. A verifica- 
tion device 10 in this embodiment may be identical with 
that in any of the first embodiment (shown in Fig. 3) or 
the second embodiment (shown in Fig. 5). 

By the following numbered paragraphs, the function 
of the means constituting the devices will be described 
step by step. 

1. The verification device 10 is invoked by a user. 

2. The verification device 10 sends challenging 
data C and a modulus n to the challenging data 
storing means 111 of the proving device 11. The 
modulus n is stored in the access ticket public key 
storing means 101, and the challenging data C is 
generated in one of the manners defined in the first 
embodiment or the second embodiment: C is iden- 
tical with either r E mod n or r E C mod n. 

3. The first calculation means 112 of the proving 
device 11 calculates an intermediate result R* 
according to the relation (20). An access ticket t to 
be used is stored in the access ticket storing means 
113. 

R'= C* mod n (20) 

4. The exponent generation means 130 calculates 
F(n, e) by applying the collision-free function F to 
the modulus n, stored in the challenging data stor- 
ing means 111, and the user identifying information 
e, stored in the user identifying information storing 
means 115. 

F(n, e) (21) 

5. Receiving the result from the exponent genera- 
tion means 130, the second calculation means 114 
of the proving device 1 1 calculates a differential S 
according to the relation (22). 

S = C F(n ' e) modn (22) 

6. Receiving R' and S from the first calculation 
means 112 and the second calculation means 1 14, 
the response generation means 1 1 6 of the proving 
device calculates a response R according to the 
relation (23). 

R = R'S* 1 modn (23) 
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In the relation (23), S" 1 denotes the reciprocal 
of S under the modulus n. Hence, S and S 1 satisfy 
the relation (24). 

5 

SS 1 mod n = 1 (24) 

7. The proving device 11 returns the generated 
response R to the response storing means 105 of 
the verification device 10. io 

8. The verification device 10 examines the 
response received from the proving device 11. 

Fourth Embodiment 

15 

In a fourth embodiment, a proving device 1 1 com- 
prises a computer program executed on a user's PC or 
workstation, a smart card or PC card (PCMCIA card) 
attachable to the user's PC or workstation, and a pro- 
gram executed on this smart card or PC card. 20 

As is obvious from the explanation of the former 
three embodiments, a user identifying information e, 
stored in a user identifying information storing means 
115, must be kept secret to others. Furthermore, 
observing process of execution of a second calculation 25 
means 114, which needs e as an input to itself, may 
lead to leak of e. The same situation applies to an expo- 
nent generation means 130. Consequently, in practical 
use, the user identifying information storing means 115, 
the second calculation means 114 and the exponent 30 
generation means 130 should be protected by some 
means against attempts to pry out some crucial secret 
out of them. 

One solution is confining the crucial part of the 
proving device 1 1 within hardware equipped with tunc- 35 
tion to prevent its inside from being observed or tam- 
pered with by unauthorized means. Generally, such 
hardware is called tamper-resistant hardware. 

In creating the tamper-resistant hardware, it is pos- 
sible to use the technology disclosed in Patent Number 40 
1 ,863,953, Patent Number 1 ,860,463 or Japanese Laid- 
Open Patent Publication 3-100753, for example. In Pat- 
ent Number 1,863,953, an enclosure composed of a 
plurality of cards having multi -layered conductive pat- 
terns is provided surrounding an information memory 45 
medium. Memory information is destroyed when the 
conductive pattern which is detected differs from an 
expected pattern. 

In Patent Number 1,860,463, a detection circuit 
composed of an integration circuit or the like is provided so 
surrounding an information memory medium in addition 
to a conductive winding being formed, and through this, 
when there is infiltration to the electronic circuit region, 
fluctuations in electromagnetic energy are detected and 
memory information is destroyed. 55 

In Japanese Laid-Open Patent Publication 3- 
100753, an optical detector is provided within hardware, 
and the optical detector detects external light which 
enters when a force is applied which destroys the hard- 



ware or punctures the hardware, and a memory 
destruction device resets memory information. 

Further, choosing tamper-resistant hardware with 
portability such as a smart card or PC card may provide 
users with additional merits. Among information dealt 
with by a proving device 1 1 , only an access ticket and a 
user identifying information are unique to an individual 
user. Hence, for example, it may be useful to confine a 
user identifying information storing means 115, access 
ticket storing means 113, a second calculation means 
1 14 and exponent generation means 130 within a smart 
card or PC card, and implement the rest of the proving 
device 10 as a program to be executed on an arbitrary 
PC or workstation: a user can use an arbitrary PC or 
workstation, assuming that the program is installed on 
it, as his/her proving device only by inserting his/her 
own smart card or PC card into the computer. 

Fig. 1 7 depicts constitution of a proving device 1 1 of 
the first and second embodiments when a user identify- 
ing information storing means 1 1 5 and a second calcu- 
lation means 114 are confined within a smart card. 

Fig. 1 8 depicts constitution of a proving device 1 1 of 
the third embodiment when a exponent generation 
means 1 30 in addition to a user identifying information 
storing means 1 14 and a second calculation means 114 
is confined within a smart card. 

For both Figs. 1 7 and 1 8, a card-side l/F means 141 
within a smart card is an interface to a host computer for 
communication between a host computer and the smart 
card. More practically, the card-side l/F means 141 
comprises buffer memory and a communication pro- 
gram. 

A host-side l/F means 140. which is a part of a host 
computer, is the counter part of the card-side l/F means 
141. Both l/F means, cooperating with each other, 
transfer messages from the host computer to the smart 
card, and vice versa. 

The following numbered paragraphs describe the 
function of the means constituting the devices. 

1. The verification device 10 is invoked by a user. 

2. The verification device 10 sends challenging 
data C and a modulus n stored in the access ticket 
public key storing means 101 to the challenging 
data storing means 1 1 1 of the proving device 1 1 . 

3. The host-side l/F means 140 of the proving 
device 10 sends the challenging data C and the 
modulus n to the card-side l/F means 141 within the 
smart card. 

4. The access ticket searching means 142 retrieves 
an access ticket t corresponding to the modulus n 
that is stored in the challenging data storing means 
111. As shown before, in any of the former three 
embodiments, the definition of an access ticket t 
involves a modulus n (t = D - e + co <|> (n) or 
t = D + F(n, e) ). In the access ticket storing means 
113, zero or more access ticket are stored, and 
each access ticket is indexed with the modulus that 
was used in generating the access ticket. 
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5. The first calculation means 112 of the proving 
device 11 calculates an intermediate result R' 
according to the relation (25). 
An access ticket t is stored in the access ticket stor- 
ing means 113. 5 



R' = C l modn 



(25) 



6. The host-side l/F means 140 issues a require- 
ment for a differential S to the card-side l/F means 
141 . A response which the host-side l/F means 140 
receives is a differential S of one of the following 
forms: if the access ticket t and the means within 
the smart card were implemented in the manner of 
the first and second embodiments, the differential S 
satisfies the relation (26); if the access ticket t and 
the means within the smart card were implemented 
in the manner of the third embodiment, the differen- 
tial S satisfies the relation (27). 



S = C mod n 



_ P F(n, e) 



s = c 



mod n 



(26) 
(27) 



7. The response generation means 1 16 of the prov- 
ing device 1 1 calculates a response R according to 
either the relation (28) or (29): if the access ticket t 
and the means within the smart card were imple- 
mented in the manner of the first and second 
embodiments, the relation (28) shall be applied; if 
the access ticket t and the means within the smart 
card were implemented in the manner of the third 
embodiment, the relation (29) shall be applied. 



R = R'S mod n 



R = R'S " mod n 
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(29) 



8. The proving device 11 returns the generated 
response R to the response storing means 307 of 40 
the verification device 10. 

In this embodiment, it is possible to calculate the 
intermediate result R' and the differential S concurrently, 
because the former is calculated within the host compu- 45 
ter and the latter is within the smart card. Obviously, this 
concurrent calculation reduces the total time which the 
proving device 1 1 needs for calculating a response to a 
received challenging data. 

Further, in this embodiment, the access ticket stor- so 
ing means 1 13 may retain more than one access tick- 
ets, and the access ticket searching means 142 
retrieves an appropriate access ticket using a modulus 
issued by the verification device 10 as a key for retrieval. 
Basically, different verification device, which may be 55 
embedded within a different application program or 
server program, should assume a different modulus. 
Therefore, a user who want to access to more than one 
application programs or server programs is obliged to 



have a number of access tickets. 

The stated function of the access ticket searching 
means 142 would release a user from paraphernalia of 
selecting a correct access ticket by himself. 

Fifth Embodiment 

In a fifth embodiment, the Pohlig-Heliman asym- 
metric key cryptography is used instead of the RSA 
public key cryptography. 

In this embodiment, the definition of an access 
ticket t is given as the relation (30). 



t = D + F(p, e) 



(30) 



The following bulleted paragraphs illustrate the 
symbols appearing in the relation (30). 

An integer p is a very large prime number. 
A user identifying information e is an integer allo- 
cated to each user. The user identifying information 
e is unique to an individual user: a different user 
identifying information is allocated to a different 
user. 

An access ticket secret key D is one component of 
a Pohlig-Heliman asymmetric key pair. Since the 
assumed modulus is p, D satisfies the relation (31). 



gcd(D, p-1) = 1 



(31) 



In the above, gcd(x, y) denotes the greatest com- 
mon divisor of two integers x and y. The existence of an 
integer E satisfying the relation (32), which is called an 
access-ticket public key, is derived from the relation 

(31). 



ED mod p-1 = 1 



(32) 



A two variable function F(x, y) is an arbitrary colli- 
sion-free function. Practically, a collision-free func- 
tion may be constructed using a one-way hash 
function h as the relation (33). 



F(x, y) = h(x|y) 



(33) 



Figs. 20 and 21 are for depicting this embodiment: 
Fig. 20 depicts the constitution of the devices of this 
embodiment; Fig. 21 depicts flow of data. In Fig. 20, a 
proving device 41 comprises the following means: a 
challenging data storing means 41 1 ; a first calculation 
means 412; an access ticket storing means 413; a sec- 
ond calculation means 414; a user identifying informa- 
tion storing means 415; a response generation means 
416; and an exponent generation means 430. On the 
other hand, a verification device 40 comprises the fol- 
lowing means: a key storing means 401; a random 
number generation means 402; a random number stor- 
ing means 403; a response storing means 405; a rand- 
omizing means 421 ; a challenging seed storing means 
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C = r t C modp 



(34) 



The integer C is stored in the challenge seed 
storing means 422, and satisfies the relation (35) 
for some data K. 



C'= K modp 



(35) 



The exponent E (access ticket public key) and 
the modulus p are both stored in the key storing 
means 401. 

3. The first calculation means 412 of the proving 
device 41 calculates an intermediate result R' 
according to the relation 36. 
An access ticket t to be used is stored in the access 
ticket storing means 1 1 3. 



FT = C T mod p 



4. The exponent generation means 430 calculates 
F(p, e) by applying the collision-free function F to 
the modulus p, stored in the challenging data stor- 
ing means 111, and the user identifying information 
e, stored in the user identifying information storing 
means 41 5. 



F(p. e) 



(37) 



5. Receiving the result from the exponent genera- 
tion means 430, the second calculation means 414 
of the proving device 41 calculates a differential S 
according to the relation (38). 



10 



422; a de-randomizing means 423; and an execution 
means 310. 

By the following numbered paragraphs, the function 
of the means constituting the devices will be described 
step by step. 5 



1 . The verification device 40 is invoked by a user. 

2. The verification device 40 sends challenging 
data C and a modulus p to the challenging data 
storing means 411 of the proving device 41. The 
modulus p is stored in the key storing means 401. 
In this embodiment, the challenging data C is 
assumed to be generated in a manner similar to 
that in the second embodiment. However, it is easy 
to construct another embodiment such that chal- 
lenging data C is generated in a manner similar to 
that in the first embodiment. The challenging data C 
in this embodiment is generated by carrying out the 
following steps: the random number generating 
means 402 generates a random integer r so that r 
and the modulus p are relatively prime 
(gcd(r, p) s 1 ); the random integer r is stored in the 
random number storing means 403; and the rand- 
omizing means 121 generates challenging data C 
according to the relation (34). 



20 



25 



30 



35 



40 



(36) 45 



50 



55 



S = C F(p e) modp 



(38) 



6. Receiving R* and S from the first calculation 
means 412 and the second calculation means 414, 
the response generation means 416 of the proving 
device 41 calculates a response R according to the 
relation (39). 



R = R'S mod p 



(39) 



In the relation (39), S 1 denotes the reciprocal 
of S under the modulus p. Hence, S and S 1 satisfy 
the relation (40). 



15 



SS mod p = 1 



(40) 



7. The proving device 41 returns the generated 
response R to the response storing means 405 of 
the verification device 40. 

8. The de-randomizing means 423 of the verifica- 
tion device 40 calculates K' according to the relation 
(41). 



K' = r" n R modp 



(41) 



In course of calculation, the means uses the 
random number r stored in the random number 
storing means 403 and the response R stored in 
the response storing means 405. 

Sixth Embodiment 

A sixth embodiment is substantially similar to the 
third embodiment except that the EIGamal public key 
cryptography is used this time instead of the RSA public 
key cryptgraphy. In this embodiment, the definition of an 
access ticket t is given as the relation (42). 



t = X + F(p, e) 



(42) 



The following bulleted paragraphs illustrate the 
symbols appearing in the relation (42). 

An integer p is a very large prime number. 
A user identifying information e is an integer allo- 
cated to each user. The user identifying information 
is unique to an individual user: a different user iden- 
tifying information is allocated to a different user. 
Let (X, Y) be an arbitrary EIGamal asymmetric key 
pair assuming p is the modulus. Therefore the rela- 
tion (43) is satisfied. 



Y = G modp 



(43) 



In the relation (43), G denotes an integer represent- 
ing a generator of the multiplicative group of the finite 
field of order p. 
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Equivalents G satisfies the relations (44) and (45). 

G > 0 (44) 

min{x>0|G x = 1modp} = p-1 (45) s 

X is called an access ticket secret key, while Y is 
called an access ticket public key. 
A two variable function F(x, y) is an arbitrary colli- 
sion-free function. Practically, a collision-free func- 10 
tion may be constructed using a one-way hash 
function h as the relation (46). 

F(x,y) = h(x|y) (46) 

15 

Figs. 22 and 23 are for depicting this embodiment: 
Fig. 22 depicts the constitution of the devices of this 
embodiment; Fig. 23 depicts flow of data. 

In Fig. 22, a proving device 51 comprises the follow- 
ing means: a challenging data storing means 511 ; a first so 
calculation means 512; an access ticket storing means 
513; a second calculation means 514; a user identifying 
information storing means 515; a response generation 
means 516; and an exponent generation means 530. 
On the other hand, a verification device 50 comprises 25 
the following means: an access ticket public key storing 
means 501 ; a random number generation means 502; a 
random number storing means 503; a response storing 
means 505; a randomizing means 521; a challenge 
seed storing means 522; a de-randomizing means 523; 30 
and an execution means 310. 

By the following numbered paragraphs, the function 
of the means constituting the devices will be described 
step by step. 

35 

1 . The verification device 50 is invoked by a user. 

2. The verification device 50 sends a pair (u, C) of 
challenging data and a modulus p to the challeng- 
ing data storing means 51 1 of the proving device 

51 . The modulus p is stored in the access ticket 40 
public key storing means 501. On the other hand, 
the challenging data u and C is generated as fol- 
lows. The first component u is stored in the chal- 
lenge seed storing means 522, and satisfies the 
relation (47) for some secret random number z. 45 

u = G 2 mod p (47) 



In the challenge seed storing means 522, one so 
more seed C is stored. C 1 satisfies the relation (48) 
for some crucial data K. (48) C = Y Z K mod p 

Using this C as a seed, the other component C 
is generated as follows. The random number gener- 
ating means 502 generates a random integer r so 55 
that r and the modulus p are relatively prime 
(gcd(r, p) = 1 ); the random integer r is stored in the 
random number storing means 503; the randomiz- 
ing means 521 generates challenging data C 



according to the relation (49). 

C = rC mod p (49) 

3. The first calculation means 512 of the proving 
device 51 calculates an intermediate result S 
according to the relation (50). 

An access ticket t to be used is stored in the access 
ticket storing means 513. 

S = u 1 mod p (50) 

4. The exponent generation means 530 calculates 
F(p, e) by applying the collision-free function F to 
the modulus p, stored in the challenging data stor- 
ing means 51 1 , and the user identifying information 
e, stored in the user identifying information storing 
means 515. 

F(p. e) (51) 

5. Receiving the result from the exponent genera- 
tion means 530, the second calculation means 514 
of the proving device 51 calculates a differential S' 
according to the relation (52). 

S' = u F(pe) modp (52) 

6. Receiving S and S' from the first calculation 
means 512 and the second calculation means 514, 
the response generation means 516 of the proving 
device 51 calculates a response R according to the 
relation (53). 

R = S " 1 S'C modp (53) 

In the relation (53), S" 1 denotes the reciprocal 
of S over the modulus p. Hence, S and S" 1 satisfy 
the relation (54). 

SS * 1 mod p= 1 (54) 

7. The proving device 51 returns the generated 
response R to the response storing means 505 of 
the verification device 50. 

8. The de-randomizing means 523 of the verifica- 
tion device 50 calculates K' according to the relation 
(55). 

K' = r" 1 Rmodp (55) 



In course of calculation, the means uses the 
random number r stored in the random number 
storing means 503 and the response R stored in 
the response storing means 505. 

The straightforward implementation of the above 
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constitution would involve the following problem: use of 
a common pair of seeds for challenging data (u, C) for 
more than one occurrences of authentication allows an 
attacker to construct a device which emulates the prov- 
ing device 1 1 without the user identifying information or 5 
the access ticket. To construct such an emulator, 
H = RC-1 mod p is recorded first where C is the chal- 
lenging data at the first occurrence of authentication 
and R is the response to C calculated by the proving 
device 11. The emulator retains this H instead of the 
user identifying information e and the access ticket t, 
and on arbitrary input (u, C) issued by the verification 
device 10, returns to a response R calculated according 
to the relation R = HC mod p . Thus, the verification 
device 10 should have pairs of seeds (u 3 , C*) as many 
as necessary, and should use distinct pair for distinct 
occurrence of authentication (Note that k for 
u = G z mod p is a random number). 

Seventh Embodiment 

A seventh embodiment exploits the EIGamal signa- 
ture rather than the RSA public key cryptography in the 
first three embodiments or the EIGamal public key cryp- 
tography in the sixth embodiment. 

In this embodiment, the definition of an access 
ticket t is given as the relation (56). 

t = X+F(p, e) (56) 

The following bulleted paragraphs illustrate the 
symbols appearing in the relation (56). 

An integer p is a very large prime number. 
A user identifying information e is an integer allo- 
cated to each user. The user identifying information 
e is unique to an individual user: a different user 
identifying information is allocated to a different 
user. 

Let (X, Y) be an arbitrary EIGamal asymmetric key 
pair assuming p is the modulus. Therefore the rela- 
tion (57) is satisfied. 

Y = G X mod p (57) 

In the relation (57), G denotes an integer represent- 
ing a generator of the multiplicative group of the finite 
field of order p. 

Equivalents, an integer G satisfies the relations 
(58) and (59). 

G > 0 (58) 

min { x>0 | G x = 1 mod p } = p - 1 (59) 

X is called an access ticket secret key, while Y is 
called an access ticket public key. 

A two variable function F(x, y) is an arbitrary colli- 



sion-free function. Practically, a collision-free func- 
tion may be constructed using a one-way hash 
function h as the relation (60) shows. 

F(x.y) = h(x|y) (60) 

Figs. 24 and 25 are for depicting this embodiment: 
Fig. 24 depicts the constitution of the devices of this 
embodiment; Fig. 25 depicts flow of data. 

In Fig. 24, a proving device 61 comprises the follow- 
ing means: a challenging data storing means 611; a 
random number generation means 612; a first calcula- 
tion means 613; a second calculation means 614; an 
access ticket storing means 615; and a user identifying 
information storing means 616. On the other hand, ver- 
ification device 60 comprises the following means: an 
access ticket public key storing means 601 ; a random 
number generation means 602; a random number stor- 
ing means 603; a response storing means 605; a verifi- 
cation means 606; a execution means 607; and an error 
trapping means 608. 

By the following numbered paragraphs, the function 
of the means constituting the devices will be described 
step by step. 

1. The verification device 60 is invoked by a user. 

2. The verification device 60 sends challenging 
data C, a modulus p and a generator G to the chal- 
lenging data storing means 611 of the proving 
device 61 . The modulus p and the generator G are 
stored in the access ticket public key storing means 
601 . On the other hand, the challenging data u and 
C are generated as follows: the random number 
generation means 602 generates a random integer 
r so that r and the modulus n are relatively prime 
(gcd(r, n) = 1 ); the generated random integer r is 
stored in the random number storing means 603; 
finally, the random number generation means 602 
sets the value of C to r. As stated later in more 
detail, the response which the proving device 61 is 
to respond to the verification device 60 is EIGamal- 
signature of r with X as the signature key and p as 
the modulus. 

3. The random number generation means 612 of 
the proving device 61 generates a random integer k 
so that k and p are relatively prime (gcd(k, p) = 1 ). 
Receiving the random integer k from the random 
number generation means 612 and the modulus p 
and the generator G from the challenging data stor- 
ing means 61 1 , the first calculation means 613 cal- 
culates a first component R of a response 
according to the relation (61). 

R = G k mod p (61) 



Concurrently, the second calculation means 
614 calculates a second component S of a 
response according to the relation (62). 
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S = (C - R (t - F(p, e)))k" 1 mod p - 1 (62) 

The access ticket t is stored in the access ticket 
storing means 615, and the modulus p and the 
challenging data C are stored in the challenging 
data storing means 61 1 . 

4. The proving device 61 returns the generated 
response R to the response storing means 605 of 
the verification device 60. 

5. The verification means 606 of the verification 
device 60 examines the relation (63). 

G r = Y R R S modp (63) 

The random integer r is stored in the random 
number storing means 603; the response pair (R, 
S) is stored in the response storing means 605; the 
modulus p, the access ticket public key Y and the 
generator G are all stored in the access ticket public 
key storing means 601. 

Eighth Embodiment 

An eighth embodiment provides an example of 
specification for ways how to generate access tickets 
safely. 

In any case of the previous embodiments, access 
tickets are calculated as output of a predefined function 
on input of specific secret information, namely user 
identifying information and access ticket secret keys. 
Since leak of that secret information threatens the 
safety of the entire scheme of authentication, a safe 
device may be necessary in generating access tickets. 

Such a device is required to provide the function 
which absolutely prevents leakage of the secret infor- 
mation contained within it or results of calculations car- 
ried out within it. 

One of the simplest ways to constitute such a safe 
device is to implement services of generating and issu- 
ing access ticket to users on an isolated computer kept 
safe from any attempts at illegal accesses by users: in 
order to protect that server computer against physical 
accesses by users, the computer should be placed in a 
room entry into which is severely controlled; further, if 
the server computer is networked with users' PCs and 
access tickets are issued to users on network, the threat 
of attacks via network should be taken into account; in 
protecting the server computer from those network 
attacks, the firewall technology (for details see "Building 
Internet Firewalls" by D. Brent Chapman and Elizabeth 
D. Zwicky, O'Reilly & Associates, Inc.) may be useful. 

As shown in the previous embodiments, an access 
ticket is generated so that only the user to whom the 
ticket is issued can use it. Speaking more accurately, a 
user may succeed in authentication procedure between 
a verification device and a proving device if and only if 
he is able to feed to the proving device both an access 
ticket and user identifying information based on which 
the access ticket has been generated. 



Moreover, access tickets stated in the previous 
embodiments satisfy a stricter standard of safety: there 
is no way to forge an access ticket or to construct a 
device which emulates the proving device even though 

5 an attacker is assumed to be able to collect an arbitrary 
number of access tickets issued by legitimate access 
ticket issuers. 

The fact that access ticket satisfies the above 
standard implies that access tickets are safe enough to 

10 be conveyed to users by relatively insecure means like 
electronic mails on Internet. 

Ninth Embodiment 

15 A ninth embodiment uses a composition method for 
an access ticket and user identifying information differ- 
ing from those of the previous embodiments: this 
method is different from those of the previous embodi- 
ments in that the public information associated with user 

20 identifying information is used instead of the user iden- 
tifying information itself in generating an access ticket. 

Therefore, according to the method stated below, a 
safe access ticket issuing server stated in the eighth 
embodiment is not necessary: a user is allowed to gen- 

25 erate an access ticket with a program executed on his 
own PC or workstation. That program doesnt contain 
any secret information or any secret algorithm. 

The identifying information of a user U is the private 
key dy of an RSA public key pair. By (ey, ny), the public 

30 key corresponding to the private key dy is denoted. 
Hence, n,j = p y qu for two distinct large prime num- 
bers Pu and q Up and d y and e u are integers determined 
so as to satisfy the relations (64). 

35 1^d u <(p u -1)(q u -1) (64) 

1 -e u <(Pu- 1 K c lu- 1 ) 

eu d u s 1 mod (Pu-^ttu' 1 ) 

40 

Hereafter, the condition that n y is at least as large 
as a constant N common to all users is further 
assumed. 

An access ticket for a user U is composed as fol- 
45 lows: the public key (E, n) of an RSA public key pair is 
taken to be the public key of the access ticket to be gen- 
erated; the private key D which is paired with this public 
key (E, n) is taken to be the secret key of the access 
ticket; when the prime factorization of n is n = pq , the 
50 relations 65 is established; finally, the access ticket i v is 
defined by the relation (66). 

1 % D < N (65) 

55 DE - 1 mod(p-1)(q- 1) 

t u = D e u modn u (66) 

In the above composition, the unique security char- 
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acteristic information for authentication process is the 
private key D. Same as the cases in the previous 
embodiments, a user succeeds in authentication proce- 
dures if and only if he is able to prove that he has means 
to calculate a right response to challenging data issued 
to him by a verification device: the calculated response 
is right only when it is calculated based on the unique 
security characteristic information D. 

The composition method presented in this embodi- 
ment is characterized by the property that an access 
ticket is encryption of the unique security characteristic 
information D and the user identifying information is the 
unique decryption key to obtain D from the access 
ticket. In addition, since the user identifying information 
is the private key of an RSA key pair, anybody who is 
allowed to know the public key paired with the private 
key can generate an access ticket for the user at will. 

Hereafter, the device composition and operation of 
the proving device 71 are described with reference to 
Fig. 26. 

1 . A verification device 1 0 sends challenging data C 
to a challenging data storing means 71 1 of a prov- 
ing device 71. 

2. A decryption key generation means 712 of the 
proving device 71 acquires user identifying informa- 
tion dy which is stored in a user identifying informa- 
tion storing means 715 and an access ticket ty 
which is stored in an access ticket storing means 
713, and then calculates D* according to the rela- 
tion (67). 

D' = t (j dU mod n u (67) 

3. On input of D* calculated by the decryption key 
generation means 712 and the challenging data C 
stored in the challenging data storing means 71 1, a 
response generation means 714 of the proving 
device 71 calculates a response R according to the 
relation (68). The calculated response R is returned 
to the verification device 1 0. 

R = C D ' mod n (68) 

4. The verification device 10 verifies the legitimacy 
of the response R. 

The access ticket secret key D in the definition of 
the access ticket t u = D e y mod n u must be kept 
secret to the user U. Therefore, the user identifying 
information storing means 713. the decryption key gen- 
eration means 712 and the response generation means 
714 are to be incorporated in a defense means 760 
which is a tamper-resistant hardware. 

The same as the cases of the previous embodi- 
ments, the verification device authenticates access 
rights of the user if and only if he has the right pair of the 
ticket ty and the user identifying information e. 



Tenth Embodiment 

A tenth embodiment is substantially the same as 
the ninth embodiment, except that a response R is cal- 

5 culated using a symmetric key cipher instead of using 
the RSA public key cryptography as in the ninth embod- 
iment and an access ticket is RSA-encryption of the 
decryption key (same as the encryption key) D of the 
symmetric key cipher. As the encryption key to generate 

10 the access ticket, the public key (e u , n u ) and the RSA 
algorithm is used. 

When the encryption function of the symmetric key 
encryption is expressed as Encrypt (key, plain mes- 
sage: the output of this function being the cipher mes- 

15 sage of the plain message which is the second 
argument of the function) and the decryption function is 
expressed as Decrypt (key, cipher message: the output 
being the plain message corresponding to the cipher 
message which is the second argument of the function), 

20 the challenging data C is defined by relation (69). 

C = Encrypt (D, K) (69) 

Furthermore, the access ticket tU is defined by the 
25 relation (70). 

t u = D eU modn u (70) 

Hereafter, the operation of the proving device 1 1 is 
30 described with reference to Fig. 26. 

1 . A verification device 1 0 sends challenging data C 
to a challenging data storing means 71 1 . 

2. A decryption key generation means 712 of the 
35 proving device 1 1 acquires user identifying informa- 
tion d y which is stored in a user identifying informa- 
tion storing means 715 and an access ticket t u 
which is stored in an access ticket storing means 
713, and then calculates D' according to the rela- 

40 tion(71). 

D* = t y du mod n,j (71) 

3. On input of D' calculated by the decryption key 
45 generation means 712 and the challenging data C 

stored in the challenging data storing means 71 1 , a 
response generation means 714 of the proving 
device 1 1 calculates a response R according to the 
relation (72). The calculated response R is sent 
so back to the verification device 10. 

R = Decrypt (D' C) (72) 

4. The verification device 10 verifies the legitimacy 
55 of the response R. 

The foregoing description of preferred embodi- 
ments of this invention has been presented for pur- 
poses of illustration and description. It is not intended to 
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be exhaustive or to limit the invention to the precise form 
disclosed, and modifications and variations are possible 
in light of the above teachings or may be acquired from 
practice of the invention. The embodiments were cho- 
sen and described in order to explain the principles of 
the invention and its practical application to enable one 
skilled in the art to utilize the invention in various 
embodiments and with various modifications as are 
suited to the particular use contemplated. It is intended 
that the scope of the invention be defined by the claims 
appended hereto, and their equivalents. 

Claims 

1 . A device for authenticating user s access rights to 
resources comprising: 

first memory means 1 1 1 for storing challenging 
data 18; 

second memory means 11 5 for storing unique 
identifying information of the user 16; 
third memory means 1 13 for storing proof sup- 
port information 13 which is a result of execut- 
ing predetermined computations to the user 
unique identifying information 16 and unique 
security characteristic information of the device 
14; 

response generation means 1 16 for generating 
a response 19 from the challenging data 18 
stored in the first memory means 111, the 
unique identifying information of the user 16 
stored in the second memory means 115, and 
the proof support information 13 stored in the 
third memory means 113; and 
verification means 106 for verifying the legiti- 
macy of the response 19 by verifying that the 
response 19, the challenging data 18 and the 
unique security characteristic information of 
the device 14 satisfy a specific predefined rela- 
tion. 

2. The device for authenticating user's access rights 
to resources of claim 1 further comprising: 

protect means 160 for preventing any data 
inside from being observed or being tampered 
with from the outside, at least confining the 
second memory means 115 and the response 
generation means 1 16. 

3. The device for authenticating user's access rights 
to resources of claim 1 , wherein 

at least the second memory means 115 and 
the response generation means 1 16 are imple- 
mented within a small portable device such as 
a smart card. 

4. The device for authenticating user's access rights 



to resources of any of claims 1 through 3, wherein 

the response generation means 116 com- 
prises: 

5 first calculation means 712 for replaying the 

unique security characteristic information of 
the device 14 by executing predetermined cal- 
culations to the unique identifying information 
of the user 16 stored in the second memory 

10 means 115 and the proof support information 

13 stored in the third memory means 113; and 
second calculation means 714 for generating a 
response by executing predetermined calcula- 
tions to the challenging data 18 stored in the 

is first memory means 111 and the unique secu- 

rity characteristic information of the device 14 
replayed by the first calculation means 712. 

5. The device for authenticating user's access rights 
20 to resources of any of claims 1 through 3. wherein 

the response generation means 116 com- 
prises: 

third calculation means 1 1 2 for generating first 
25 intermediate information by executing prede- 

termined calculations to the challenging data 
stored in the first memory means and the proof 
support information stored in the third memory 
means; 

30 fourth calculation means 114 for generating 

second intermediate information by executing 
predetermined calculations to the challenging 
data 18 stored in the first memory means 111 
and the user unique identifying information 16 

35 stored in the second memory means 115; and 

fifth calculation means 116 for generating a 
response by executing predetermined calcula- 
tions to the first intermediate information gen- 
erated by the third calculation means 112 and 

40 the second intermediate information generated 

by the fourth calculation means 114. 

6. The device for authenticating user s access rights 
to resources of claim 5, further comprising: 

45 

protect means 160 for preventing any data 
inside from being observed or being tampered 
with from the outside, at least confining the 
second memory means 1 1 5 and the fourth cal- 
50 culation means 114. 

7. The device for authenticating user's access rights 
to resources of claim 5, wherein 

55 at least the second memory means 115 and 

. the fourth calculation means 114 are imple- 
mented within a portable device such as a 
smart card. 
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8. The device for authenticating user's access rights 
to resources of any of claims 1 through 7, wherein 



9. The device for authenticating user's access rights 
to resources of any of claims 1 through 7, wherein 

the unique security characteristic information 20 
of the device 1 4 is an encryption key of a cipher 
function, and 

the verification means 106 verifies the legiti- 
macy of the response by verifying that the 
response 19 generated by the response gener- 25 
ation means 1 16 is identical with encryption of 
the challenging data with the encryption key. 

10. The device for authenticating user's access rights 

to resources of any of claims 1 through 7, wherein 30 



1 1 . The device for authenticating user's access rights 
to resources ot claim 8 or 9, wherein 

the cipher function is of the asymmetric key 45 
cryptography, and 

the unique security characteristic information 
of the device 14 is one component of the key 
pair of the cipher function. 

50 

1 2. The device for authenticating user's access rights 
to resources of claim 1 1 , wherein 



1 3. The device for authenticating user's access rights 
to resources of claim 8 or 9, wherein 

the cipher function is of the symmetric key 
cryptography, and 

the unique security characteristic information 
of the device 14 is the common key of the 
cipher function. 

14. The device for authenticating user's access rights 
to resources of any of claims 1 through 13, further 
comprising: 

a proving device 11 having the first memory 
means 111, the second memory means 1 1 5, 
the third memory means 1 13 and the response 
generation means 116; and 
a verification device 10 having fourth memory 
means for storing the challenging data 18, fifth 
memory means 105 for storing the response 
19 and the verification means 106, wherein 
the verification device 10 transfers the chal- 
lenging data 18 stored in the fourth memory 
means to the first memory means 11 1 of the 
proving device 1 1 , the proving device 1 1 trans- 
fers the response 18 generated by the 
response generation means 116 to the fifth 
memory means 105 of the verification device 
10, and the verification means 106 of the verifi- 
cation device 10 verifies the legitimacy of the 
response stored in the fifth memory means 
105. 

15. The device for authenticating user's access rights 
to resources of claim 14, wherein 

the unique security characteristic information 
of the device 1 4 is an encryption key of a cipher 
function, 

the verification device 10 comprises random 
number generation means 102 for generating a 
random number and for storing it in the fourth 
memory means, and 

the verification means 106 verifies the legiti- 
macy of the response by verifying that the 
response stored in the fifth memory means 105 
is identical with encryption of the challenging 
data stored in the fourth memory means 103 
with the encryption key. 

16. The device for authenticating user's access rights 
to resources of claim 1 4, wherein 

the unique security characteristic information 
of the device 14 is a decryption key of a cipher 
function, 

the verification device 10 comprises random 
number generation means 1 02 for generating a 
random number, sixth memory means 103 for 



the cipher function is of the public key cryptog- 
raphy, and 55 
the unique security characteristic information 
of the device 14 is the private key of the public 
key pair of the cipher function. 



the unique security characteristic information 
of the device 14 is a decryption key of a cipher s 
function, 

the challenging data 18 is encryption of infor- 
mation using the cipher function with the 
encryption key corresponding to the decryption 
key, and 10 
the verification means 106 verifies the legiti- 
macy of the response by verifying that the 
response 19 generated by the response gener- 
ation means 1 16 is identical with decryption of 
the challenging data with the decryption key. is 



20 



25 



the characteristic information of the device 14 
is the signature key of a digital signature func- 
tion, and 

the verification means 106 verifies the legiti- 35 
macy of the response by verifying that the 
response 19 generated by the response gener- 
ation means 1 16 is identical with the digital sig- 
nature for the challenging data, which is 
calculated with the signature key. 40 
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storing the generated random number and sev- 
enth memory means 122 for storing a seed for 
challenging data, and wherein 
the random number generation means 102 
stores the generated random number in the 5 
sixth memory means 103 while randomizing 
the seed for the challenging data stored in the 
seventh memory means 122 by executing pre- 
defined calculations to the random number 
stored in the sixth memory means 103 and the w 
seed stored in the seventh memory means 122 
and then storing the randomized seed as chal- 
lenging data in the fourth memory means, and 
the verification means 106 of the verification 
device 10 de-randomizes the response stored is 
in the fifth memory means 105 by executing 
predefined calculations to the random number 
stored in the sixth memory means 103 and the 
response stored in the fifth memory means 
105, and then verifies the legitimacy of the de- 20 
randomized response by verifying that the de- 
randomized result is identical with decryption of 
the seed stored in the seventh memory means 
1 22 with the decryption key which is the unique 
security characteristic information of the device 25 
14. 

17. The device for authenticating user's access rights 
to resources of claim 1 4, wherein 

30 

the unique security characteristic information 
of the device 14 is the signature key of a digital 
signature function, and 

the verification device 10 comprises random 
number generation means 1 02 for generating a 35 
random number and storing the generated ran- 
dom number as challenging data in the fourth 
memory means, and wherein 
the verification means 106 of the verification 
device 10 verifies the legitimacy of the 40 
response by verifying that the response stored 
in the fifth memory means 105 is identical with 
the digital signature for the challenging data 
stored in the fourth memory means, which is 
calculated with the signature key which is the 45 
unique security characteristic information of 
the device 1 4. 

18. The device for authenticating user's access rights 

to resources of claim 1 5, wherein so 

the unique security characteristic information 
of the device 14 is the private key D of an RSA 
public key pair with a modulus n, and 
the verification means 106 verifies the legiti- ss 
macy of the response by verifying that the E-th 
power of the response R stored in the fifth 
memory means 105, where E denotes the pub- 
lic key associated with the private key D, is con- 



gruent with the challenging data C stored in the 
fourth memory means modulo n 
(R E mod n = C mod n). 

19. The device for authenticating user's access rights 
to resources of claim 16, wherein 

the unique security characteristic information 
of the device 1 4 is the private key D of an RSA 
public key pair with a modulus n, 
a seed C* for challenging data stored in the sev- 
enth memory means 122 is an RSA-encryption 
of data K with the public key E of the RSA pub- 
lic key pair ( DE mod <|> (n) = 1 , 
C' = K E modn), 

a random number r generated by the random 
number generation means 102 is stored in the 
sixth memory means 103, 
challenging data C generated and stored in the 
fourth memory means satisfies the relation 
C = r E C modn, and 

the verification means 106 verifies the legiti- 
macy of the response R stored in the fifth mem- 
ory means 1 05 by verifying that the quotient of 
R divided by r modulo n is congruent with the 
data K modulo n ( K mod n = r-1 R mod n ). 

20. The device for authenticating user's access rights 
to resources of claim 18 or 19, wherein 

a proof support information t 13 stored in the 
third memory means 113 satisfies the relation 
t=D-e+w<|>(n), where e denotes user 
unique identifying information 16 stored in the 
second memory means 115, w denotes a con- 
flict-free random number determined depend- 
ent upon both n and e and <|> (n) denotes the 
Euler nurrtoer of n, and 

the response generated by response genera- 
tion means 1 1 6 is identical with the D-th power 
of challenging data C stored in the first memory 
means 1 1 1 modulo n (R = C D mod n ). 

21. The device for authenticating user's access rights 
to resources of claim 20, wherein 

the response generation means 116 further 
comprises: 

third calculation means 112 for calculating the 
t-th power of challenging data C stored in the 
first memory means 1 1 1 modulo n (C t mod n), 
where t denotes proof support information 13 
stored in the third memory means 1 13; 
fourth calculation means 1 1 4 for calculating the 
e-th power of the challenging data C modulo n 
(C e mod n), where e denotes user unique iden- 
tifying information 16 stored in the second 
memory means 115; and 
fifth calculation means 116 for calculating a 
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response R by multiplying the result calculated 
by the third calculation means 1 12 by the result 
calculated by the fourth calculation means 114 
modulo n (R = C*C e mod n ). 

22. The device for authenticating user's access rights 
to resources of claim 21, further comprising: 

protect means 160 for preventing any data 
inside from being observed or being tampered 
with from the outside, confining the second 
memory means 115 and the fourth calculation 
means 114. 

23. The device for authenticating user's access rights 
to resources of claim 18 or 19. wherein 



means 114. 

26. The device for authenticating user's access rights 
to resources of claim 15, wherein 

5 

the unique security characteristic information 
of the device 14 is a key D of a Pohlig-Hellman 
key pair of a modulus p, and 
the verification means 106 verifies the leg'rti- 

10 macy of the response by verifying that the E-th 

power of the response R stored in the fifth 
memory means 105, where E denotes the 
counterpart key of the key D 
(DE mod (p-1) = 1 ), is congruent with the chal- 

15 lenging data C stored in the fourth memory 

means modulo p ( R E mod p = C mod p ). 



proof support information t 13 stored in the 
third memory means 113 satisfies the relation 
t = D + F(n, e) , where e denotes user unique 
identifying information 16 stored in the second 
memory means 115, and F(x, y) denotes a two- 
variable collision-free function, and 
a response generated by the response genera- 
tion means 1 16 is identical with the D-th power 
of challenging data C stored in the first memory 
means 111 modulo n (R = C D mod n). 

24. The device for authenticating user's access rights 
to resources of claim 23, wherein 

the response generation means 116 further 
comprises: 

third calculation means 112 for calculating the 
t-th power of challenging data C stored in the 
first memory means 111 modulo n, where t 
denotes the proof support information 13 
stored in the third memory means 1 1 3 (C 1 mod 
n); 

fourth calculation means 1 1 4 for calculating the 
F(n, e)-th power of the challenging data C mod- 
ulo n (C F(n ' G) mod n), where e denotes the user 
unique identifying information 16 stored in the 
second memory means 115 and F(x, y) 
denotes a two-variable collision-free function; 
and 

fifth calculation means 116 for calculating a 
response R by dividing the result calculated by 
the third calculation means 112 by the result 
calculated by the fourth calculation means 114 
modulo n (R = C l C " F(ne) mod n ). 

25. The device for authenticating user's access rights 
to resources of claim 24. further comprising: 

protect means 160 for preventing any data 
inside from being observed or being tampered 
with from the outside, confining the second 
memory means 1 15 and the fourth calculation 



27. The device for authenticating user's access rights 
to resources of claim 1 6, wherein 

20 

the unique security characteristic information 
of the device 14 is a key D of a Pohlig-Hellman 
key pair of a modulus p, 
a seed C for challenging data stored in the sev- 
25 enth memory means 422 is Pohlig-Hell man- 

encryption of data K with the counterpart key E 
of the key D (DE mod (p-1) = 1 . 
C'= K E modp). 

a random number r generated by the random 
30 number generation means 402 is stored in the 

sixth memory means 403, 
challenging data C stored in the fourth memory 
means satisfies the relation C = r E C mod p , 
and 

35 the verification means 106 verifies the legiti- 

macy of the response R stored in the fifth mem- 
ory means 405 by verifying that the quotient of 
R divided by r modulo p is conaruent with the 
data K modulo p ( K mod p = r " R mod p). 

40 

28. The device for authenticating user s access rights 
to resources of claim 26 or 27, wherein 

proof support information t 13 stored in the 
45 third memory means 413 satisfies the relation 

t = D + F(p, e) , where e denotes the user 
unique identifying information 16 stored in the 
second memory means 415, and F(x, y) 
denotes a two-variable collision -free function, 
so and 

a response generated by the response genera- 
tion means 41 6 is identical with the D-th power 
of challenging data C stored in the first memory 
means 411 modulo p (R = C D modp). 

55 

29. The device for authenticating user's access rights 
to resources of claim 28, wherein 

the response generation means 416 further 
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comprises: 

third calculation means 412 for calculating the 
t-th power of challenging data C stored in the 
first memory means 411 modulo p, where t 
denotes the proof support information 13 5 
stored in the third memory means 413 (C 1 mod 

p); 

fourth calculation means 414 for calculating the 
F(p, e)-th power of the challenging data C mod- 
ulo p (C F(p,e) mod p), where e denotes the user 10 
unique identifying information 16 stored in the 
second memory means 415 and F(x, y) 
denotes a two-variable collision-free function; 
and 

fifth calculation means 416 for calculating a 15 
response R by dividing the result calculated by 
the third calculation means 412 by the result 
calculated by the fourth calculation means 414 
modulop(R = C l C' F(pe) modp). 

20 

30. The device for authenticating user's access rights 
to resources of claim 29, further comprising: 

protect means 160 for preventing any data 
inside from being observed or being tampered 25 
with from the outside, confining the second 
memory means 415 and the fourth calculation 
means 414. 

31. The device for authenticating user's access rights 30 
to resources of claim 16, wherein 



32. The device for authenticating user's access rights 



to resources of claim 31 , wherein 

proof support information t 13 stored in the 
third memory means 513 satisfies the relation 
t = D + F(p, e) , where e denotes the user 
unique identifying information 16 stored in the 
second memory means 515 and F(x, y) 
denotes a two-variable collision-free function, 
and 

a response R generated by the response gen- 
eration means 516 is identical with the quotient 
of C divided by X-th power of u modulo p 
(R = u* x C mod p ), where the pair C and u is 
the challenging data stored in the first memory 
means 51 1 . 

33. The device for authenticating user's access rights 
to resources of claim 32, wherein 

the response generation means 516 further 
comprises: 

third calculation means 512 for calculating the 
t-th power of the component u of the challeng- 
ing data pair stored in the first memory means 
51 1 modulo p, where t denotes proof support 
information stored in the third memory means 
513 (ut mod p); 

fourth calculation means 51 4 for calculating the 
F(p, e)-th power of u modulo p (u F ^ e ^ mod p), 
where e denotes the user unique identifying 
information 16 stored in the second memory 
means 515 and F(x, y) denotes a two-variable 
collision-free function; and 
fifth calculation means 516 for calculating a 
response R by dividing the product of the other 
component C of the challenging data pair and 
the result calculated by the fourth calculation 
means 514 by the result calculated by the third 
calculation means 512 . modulo p 
(R^Cu^u" 1 modp). 

34. The device for authenticating user's access rights 
to resources of claim 33, further comprising: 

protect means 160 for preventing any data 
inside from being observed or being tampered 
with from the outside, confining the second 
memory means 515 and the fourth calculation 
means 514. 

35. The device for authenticating user's access rights 
to resources of claim 1 7, wherein 

the unique security characteristic information 
of the device 14 is the signature key X of an 
EIGamal public key pair with a modulus p and a 
generator G, 

the public key Y corresponding to X is the X-th 
power of G modulo p ( Y = G mod p ), 



25 



the unique security characteristic information 
of the device 14 is the private key X of an EIGa- 
mal public key pair with a modulus p and a gen- 35 
erator G, 

the public key Y corresponding to X is the X-th 
power of G modulo p ( Y = G mod p ), 
u denotes the z-th power of the modulo p 
( u = G z mod p ) for a random number z, 40 
K' denotes the product modulo p of the z-th 
power of Y modulo p and a data K 
(K' = Y z Kmodp), 

the seventh memory means 522 retains the 
pair of u and K\ 45 
a random number r generated by the random 
generation means 602 is stored in the sixth 
memory means 603, 

C denotes the product modulo p of K' and r 
(C = rK'modp), so 
the fourth memory means retains the pair C 
and u, and 

the verification means 106 verifies the legiti- 
macy of the response R stored in the fifth mem- 
ory means 505 by verifying that the quotient of 55 
R divided by r modulo p is congruent with K 
modulo p (K mod p = r" Rmodp). 
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a response stored in the fifth memory means 
605 is a pair of R and S, and 
the verification means 606 verifies the legiti- 
macy of the response R stored in the fifth mem- 
ory means 605 by verifying that the C-th power 
of G for the challenging data C stored in the 
fourth memory means is congruent modulo p 
with the product of the R-th power of Y and the 
S-th power of R(G C modp = Y R R S modp). 

36. The device for authenticating user's access rights 
to resources of claim 35, wherein 

proof support information t 13 stored in the 
third memory means 613 satisfies the relation 
t = D + F(p, e) , where e denotes the user 
unique identifying information 16 stored in the 
second memory means 616, and F(x, y) 
denotes a two-variable collision-free function, 
and 

the response generation means 1 16 generates 
a response pair R and S by carrying out the fol- 
lowing steps of: 

generating a random number k; 

calculating R as the k-th power of G modulo p 

(R = G k modp); and 

calculating S according to the relation 
S = (C-RX)k _1 mod (p-1) . 

37. The device for authenticating user's access rights 
to resources of claim 36, further comprising: 

protect means 160 for preventing any data 
inside from being observed or being tampered 
with from the outside, confining the second 
memory means 616 and the fourth calculation 
means 614. 

38. The device for authenticating user s access rights 
to resources of claim 4, wherein 

the user unique identifying information 16 
stored in the second memory means 715 is a 
decryption key of a cipher function, 
the proof support information 13 stored in the 
third memory means 713 is an encryption of 
the unique security characteristic information 
of the device with the encryption key corre- 
sponding the decryption key, and 
the first calculation means 712 calculates the 
unique security characteristic information of 
the device 14 by decrypting the proof support 
information stored in the third memory means 
713 with the decryption key stored in the sec- 
ond memory means 715. 

39. The device for authenticating user's access rights 
to resources of claim 38, wherein 



the cipher function is of the asymmetric key 
cryptography, and 

the user unique identifying information 16 is a 
component of the key pair of the cipher func- 
5 tion. 

40. The device for authenticating user's access rights 
to resources of claim 39, wherein 

io the cipher function is of the public key cryptog- 

raphy, and 

the user unique identifying information 1 6 is the 
private key of the public key pair of the cipher 
function. 

75 

41. The device for authenticating user's access rights 
to resources of claim 38, wherein 

the cipher function is of the symmetric key 
20 cryptography, and 

the user unique identifying information 1 6 is the 
common secret key of the cipher function. 

42. The device for authenticating user's access rights 
25 to resources of claim 8 or 16. wherein 

the verification device 10 further comprises: 
eighth memory means 310a for storing a clear 
data encryption of which is the challenging 

30 data or the seed for challenging data stored in 

the first memory means 111; and 
comparison means 310b for examining 
whether the clear data stored in the eighth 
memory means 310a is identical with data 

35 inputted to the comparison means 310b, and 

wherein 

the verification means 106 feeds the response 
or the de-randomized value of the response 
stored in the fifth memory means 105 to the 

40 comparison means 310b, receives the answer 

from the comparison means 310b, and thereby 
the verification means 106 verifies the legiti- 
macy of the response if and only if the received 
answer shows that the clear data stored in the 

45 eighth memory means 310a is identical with 

the data inputted to the comparison means 
310b. 

43. The device for authenticating user's access rights 
so to resources of claim 8 or 1 6, wherein 

the verification device 1 0 further comprises: 
ninth memory means 310a for storing a value 
obtained by applying a one-way function to 
55 clear data encryption of which is the challeng- 

ing data or the seed for challenging data stored 
in the seventh memory means 122; 
sixth calculation means 310c for outputting a 
value calculated by applying the one-way func- 
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tion to an inputted data; and 
comparison means 310b for examining 
whether the value stored in the ninth memory 
means 310a is identical with data inputted to 
the comparison means 31 Ob, and wherein s 
the verification means 1 06 feeds the response 
or the de-randomized value of the response to 
the sixth calculation means 310c, receives a 
result from the sixth calculation means 310c, 
feeds the result to the comparison means 31 0b io 
and receives an answer from the comparison 
means 310b, and thereby the verification 
means 106 verifies the legitimacy of the 
response if and only if the received answer 
shows that the result of the calculation by the 15 
sixth calculation means 310c is identical with 
the data stored in the ninth memory means 
310a. 

44. The device for authenticating user's access rights 20 
to resources of claim 8 or 16, wherein 

the verification device 10 further comprises: 
program execution means 310 for executing 
code of a program encryption of which is the 25 
challenging data stored in the seventh memory 
means 122, and wherein 
the verification means 106 feeds the response 
stored in the fifth memory means 105 as pro- 
gram code to the program execution means 30 
310, and 

the program execution means 310 correctly 
functions if and only if the response generation 
means 116 correctly decrypts the challenging 
data which is an encryption of the code of the 35 
program, that is, the encryption of the program 
is correctly decrypted. 

45. The device for authenticating user's access rights 

to resources of claim 8 or 16, wherein 40 

the verification device 10 further comprises: 
program execution means 310; 
program storing means 310g; and 
program decryption means 310h, and wherein 45 
the program storing means 310g stores code of 
a program a part or all of which is encrypted, 
an encryption of the decryption key for the par- 
tial or whole encrypted program code is the 
challenging data stored in the seventh memory so 
means 122, 

the verification means 106 feeds the response 
to the program decryption means 31 Oh. 
the program decryption means 31 Oh decrypts 
the program stored in the program storing 55 
means 31 Og with the response as a decryption 
key, and 

the program execution means 310 correctly 
executes the decrypted program if and only if 



the response generation means 116 correctly 
decrypts the challenging data, that is, the 
decryption key for decrypting the encryption of 
the program is correctly decrypted. 

46. The device for authenticating user's access rights 
to resources of claim 14, wherein 

the proving device 11 and the verification 
device 10 are installed in a box material, and 
the verification device 10 transfers the chal- 
lenging data 18 stored in the fourth memory 
means to the first memory means 111 of the 
proving device 1 1 and the proving device 1 1 
transfers the response 19 generated by the 
response generation means 116 to the fifth 
memory means 105 of the verification device 
10 without using a communication network out- 
side of the box material. 

47. A method for authenticating user s access rights to 
resources by verifying the legitimacy of a response 
generated from challenging data for proving the 
user s access rights, comprising: 

a step for storing the challenging data; 

a step for storing unique identifying information 

of the user; 

a step for storing proof support information 
which is a result of predetermined computa- 
tions to the unique identifying information of the 
user and unique security characteristic infor- 
mation; 

a step for generating a response by executing 
predetermined computations to the challenging 
data, the unique identifying information of the 
user and the proof support information; and 
a step for verifying the legitimacy of the 
response by verifying that the response, the 
challenging data and the unique security char- 
acteristic information satisfy a specific prede- 
fined relation. 

48. A computer program product for use with a compu- 
ter, the computer program product comprising: 

a computer usable medium having computer 
readable program code means embodied in 
the medium for causing the computer to 
authenticate user's access rights to resources 
by verifying the legitimacy of a response 19 
generated from challenging data 18 for proving 
the user's access rights, the computer program 
product having: 

computer readable program code means for 
causing the computer to store the challenging 
data 18; 

computer readable program code means for 
causing the computer to store unique identify- 
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ing information of the user 16; 
computer readable program code means for 
causing the computer to store proof support 
information 13 which is a result of predeter- 
mined computations to the unique identifying 5 
information of the user 16 and unique security 
characteristic information 14; 
computer readable program code means for 
causing the computer to generate a response 
19 by executing a predetermined computations 10 
to the challenging data 18, the unique identify- 
ing information of the user 16 and the proof 
support information 13; and 
computer readable program code means for 
causing the computer to verify the legitimacy of is 
the response 19 by verifying that the response 
19, the challenging data 18 and the unique 
security characteristic information 14 satisfy a 
specific predefined relation. 

20 

49. A computer program product for use with a compu- 
ter, the computer program product comprising: 



50. A program execution control device for authenticat- so 
ing user's access rights to resources by verifying 
the legitimacy of a response generated from chal- 
lenging data for proving the user's access rights 
and controlling execution of a program based on 
the authentication of the user's access rights, com- 55 
prising: 

first memory means 111 for storing challenging 
data 18; 



second memory means 115 for storing unique 
identifying information of the user 16; 
third memory means 1 13 for storing proof sup- 
port information 13 which is a result of prede- 
termined computations to the unique 
identifying information of the user 16 and 
unique security characteristic information of 
the device 14; 

response generation means 1 16 for generating 
a response 19 by executing predetermined 
computations to the challenging data 18, the 
unique identifying information of the user 16 
and the proof support information 13; 
verification means 106 for verifying the legiti- 
macy of the response 19 by verifying that the 
response 19, the challenging data 18 and the 
unique security characteristic information 14 
satisfy a specific predefined relation; and 
continuation means for continuing execution of 
the program if the legitimacy of the response is 
verified. 

51. An information processing apparatus for authenti- 
cating user's access rights to specific information 
processing resources by verifying the legitimacy of 
a response 19 generated for proving the users 
access rights and permitting access to the specific 
information processing resources, comprising: 

first memory means 1 1 1 for storing challenging 
data 18; 

second memory means 1 1 5 for storing unique 
identifying information of the user 16; 
third memory means 1 13 for storing proof sup- 
port information 13 which is a result of prede- 
termined computations to the unique 
identifying information of the user 16 and 
unique security characteristic information 14; 
response generation means 1 16 for generating 
a response 19 by executing predetermined 
computations to the challenging data 18, the 
unique identifying information of the user 16 
and the proof support information 13; 
verification means 106 for verifying the legiti- 
macy of the response 19 by verifying that the 
response 19, the challenging data 18 and the 
unique security characteristic information 14 
satisfy a specific predefined relation; and 
permission means for permitting access to the 
specific information processing resources if the 
legitimacy of the response is verified. 



a computer usable medium having computer 
readable program code means embodied in 25 
the medium for causing the computer to gener- 
ate a response 19 from challenging data 18, 
the legitimacy of which is to be verified for 
authenticating user's access rights, the compu- 
ter program product having: 30 
computer readable program code means for 
causing the computer to store the challenging 
data 18; 

computer readable program code means for 
causing the computer to store unique identify- 35 
ing information of the user 16; 
computer readable program code means for 
causing the computer to store proof support 
information 13 which is a result of predeter- 
mined computations to the unique identifying 40 
information of the user 16 and unique security 
characteristic information 14; and 
computer readable program code means for 
causing the computer to generate a response 
19 by executing predetermined computations 45 
to the challenging data 18, the unique identify- 
ing information of the user 16 and the proof 
support information 1 3. 
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